From owner-cvs-src-old@FreeBSD.ORG  Fri Jun 26 01:05:14 2009
Return-Path: <owner-cvs-src-old@FreeBSD.ORG>
Delivered-To: cvs-src-old@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34])
	by hub.freebsd.org (Postfix) with ESMTP id 559311065673
	for <cvs-src-old@freebsd.org>; Fri, 26 Jun 2009 01:05:14 +0000 (UTC)
	(envelope-from dougb@FreeBSD.org)
Received: from repoman.freebsd.org (repoman.freebsd.org
	[IPv6:2001:4f8:fff6::29])
	by mx1.freebsd.org (Postfix) with ESMTP id 424478FC13
	for <cvs-src-old@freebsd.org>; Fri, 26 Jun 2009 01:05:14 +0000 (UTC)
	(envelope-from dougb@FreeBSD.org)
Received: from repoman.freebsd.org (localhost [127.0.0.1])
	by repoman.freebsd.org (8.14.3/8.14.3) with ESMTP id n5Q15EHt021969
	for <cvs-src-old@freebsd.org>; Fri, 26 Jun 2009 01:05:14 GMT
	(envelope-from dougb@repoman.freebsd.org)
Received: (from svn2cvs@localhost)
	by repoman.freebsd.org (8.14.3/8.14.3/Submit) id n5Q15EW3021968
	for cvs-src-old@freebsd.org; Fri, 26 Jun 2009 01:05:14 GMT
	(envelope-from dougb@repoman.freebsd.org)
Message-Id: <200906260105.n5Q15EW3021968@repoman.freebsd.org>
X-Authentication-Warning: repoman.freebsd.org: svn2cvs set sender to
	dougb@repoman.freebsd.org using -f
From: Doug Barton <dougb@FreeBSD.org>
Date: Fri, 26 Jun 2009 01:04:50 +0000 (UTC)
To: cvs-src-old@freebsd.org
X-FreeBSD-CVS-Branch: HEAD
Subject: cvs commit: src/etc/rc.d NETWORKING ipfw netif pf pflog pfsync
X-BeenThere: cvs-src-old@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: **OBSOLETE** CVS commit messages for the src tree
	<cvs-src-old.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src-old>,
	<mailto:cvs-src-old-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/cvs-src-old>
List-Post: <mailto:cvs-src-old@freebsd.org>
List-Help: <mailto:cvs-src-old-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/cvs-src-old>,
	<mailto:cvs-src-old-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 26 Jun 2009 01:05:14 -0000

dougb       2009-06-26 01:04:50 UTC

  FreeBSD src repository

  Modified files:
    etc/rc.d             NETWORKING ipfw netif pf pflog pfsync 
  Log:
  SVN rev 195026 on 2009-06-26 01:04:50Z by dougb
  
  Reverse the effect of r193198 for pf and ipfw which will once again
  allow them to start after netif. There were too many problems reported
  with this change in the short period of time that it lived in HEAD, and
  we are too late in the release cycle to properly shake it out.
  
  IMO the issue of having the firewalls up before the network is still a
  valid concern, particularly for pf whose default state is wide open.
  However properly solving this issue is going to take some investment
  on the part of the people who actually use those tools.
  
  This is not a strict reversion of all the changes for r193198 since it
  also included some simplification of the BEFORE/REQUIRE logic which is
  still valid for ipfilter and ip6fw.
  
  Revision  Changes    Path
  1.17      +1 -1      src/etc/rc.d/NETWORKING
  1.21      +1 -1      src/etc/rc.d/ipfw
  1.32      +1 -1      src/etc/rc.d/netif
  1.19      +1 -1      src/etc/rc.d/pf
  1.14      +1 -1      src/etc/rc.d/pflog
  1.7       +1 -1      src/etc/rc.d/pfsync